{"id":"UBUNTU-CVE-2016-1899","details":"CRLF injection vulnerability in the ui-blob handler in CGit before 0.12 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks or cross-site scripting (XSS) attacks via CRLF sequences in the mimetype parameter, as demonstrated by a request to blob/cgit.c.","modified":"2025-07-16T07:49:27.614016Z","published":"2016-01-20T16:59:00Z","withdrawn":"2025-07-18T16:43:24Z","upstream":["CVE-2016-1899"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2016-1899"},{"type":"REPORT","url":"http://git.zx2c4.com/cgit/commit/?id=1c581a072651524f3b0d91f33e22a42c4166dd96"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2016-1899"}],"affected":[{"package":{"name":"cgit","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/cgit@0.11.2.git2.3.2-1.1?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.11.2.git2.3.2-1.1"}]}],"versions":["0.11.2.git2.3.2-1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"0.11.2.git2.3.2-1.1","binary_name":"cgit"},{"binary_version":"0.11.2.git2.3.2-1.1","binary_name":"cgit-dbgsym"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2016/UBUNTU-CVE-2016-1899.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"type":"Ubuntu","score":"medium"}]}